Chinese State-Backed Hackers Exploit Critical Dell Zero-Day For Over 18 Months

A suspected Chinese state-backed hacking group has been quietly exploiting a critical software flaw in Dell Technologies software since mid-2024, ...
TechCrunch

Researchers say easy-to-exploit security bugs in ConnectWise remote-access software now under mass attack

Security researchers say a pair of easy-to-exploit flaws in a popular remote-access tool used by more than a million companies around the world are now being mass exploited, with hackers abusing the ...
SiliconANGLE

Fortinet identifies thousands of malicious software packages exploiting open-source repositories

A new report out today from Fortinet Inc.’s FortiGuard Labs highlights a growing wave of malicious software packages exploiting system vulnerabilities. Based on data collected since November 2024, the ...
HHS

Hackers Exploiting Cleo Software Zero-Day

Update Dec. 12, 2024, 00:34 UTC: A Cleo spokesperson said the company has released a new patch to address active hacking of its file transfer software. "Cleo strongly recommends customers apply the ...
manilatimes

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious Open-Source Packages

CAMBRIDGE, Mass., Jan. 27, 2026 (GLOBE NEWSWIRE) -- ReversingLabs (RL), the trusted name in file and software security, today released its fourth annual Software Supply Chain Security Report. The 2026 ...
CSO Online

Software developers: Prime cyber targets and a rising risk vector for CISOs

From technical compromise to AI-driven attacks, cyber criminals increasingly see software developers as prime targets, creating systemic risks CISOs must address.
Network World

How the bad guys view software

The recent RSA Security conference might have seemed like an odd venue to announce a book called Exploiting Software: How to Break Code, but the intention isn’t what it seems. The authors hope that ...